Forum Discussion

MPzz's avatar
MPzz
Copper Contributor
Jul 07, 2024

Trojan and Malware download

Recently, I ran a full scan of my computer using Defender and the system reported a trojan malware on my computer. The threat was quarantined.  Question I have is why did not system not detect the trojan when it was downloaded in the first place? How confident can I be that Defender will protect my system. Here is the message I got:

 

Is there a setting that I can enable to make sure this doesnot happen in the future? I have default settings now. Having used Microsoft365 from BPOS days in the year 2009, I am pretty confident about capabilities of the Defender. This, now has me worried. Should I install McAfee or Norton in addition to Defender?  Thanks

  • Check of you have realtime monitoring enabled or not. You can run get-mpcomputerstatus to get the output.

  • rahuljindal-MVP's avatar
    rahuljindal-MVP
    Bronze Contributor

    MPzz is the device onboarded on MDE or are you just enabling default OS AV? Is the device managed for security policies?

    • MPzz's avatar
      MPzz
      Copper Contributor
      Not managed by seucrity policies. Just enabled Default Antivirus that comes with Windows 11.
      • rahuljindal-MVP's avatar
        rahuljindal-MVP
        Bronze Contributor

        Check of you have realtime monitoring enabled or not. You can run get-mpcomputerstatus to get the output.

  • jbmartin6's avatar
    jbmartin6
    Iron Contributor
    it is quite likely that a detection update was pushed out for this threat, and that file was in your browser cache for quite some time before the update. This happens so frequently that here at my org we tend to ignore detections like this from the browser cache directories. You could test detection by using the Eicar test file of the MDE detection test detailed on the onboarding page.
    • MPzz's avatar
      MPzz
      Copper Contributor
      Ok.. Thanks. As you have indicated, it might have been a recent detection update that found the malware.
      Apologies. I should have indicated that it is my personal PC at home.

Resources